I have been visiting this site for several days with no problems , now today Avast picks up this .JS:Redirector-H4 [trj]. the site is http://stockseasonality.com/phpBB2/index.php Is this an infection that the site has recently picked up? is this dangerous malware?
Thanks
Generally, avast detection is accurate in these cases.
Isn’t it an encrypted/obfuscated script or iframe?
Wasn’t the site hacked?
Maybe you could contact its webmaster.
The site ‘has’ been hacked there are two very large chunks of obfuscated javascript in two script tags just after the closing Head tag.
See image I have broken the script down as they are very long single lines, to make it easier to see.
This is a site that once it is cleared I think I will be using, what can I tell him to do to correct this issue?
For a start what you see in the image, these are inserted into pages and most commonly it is down to old versions of content management software PHP, SQL, etc. which is vulnerable to exploit; so then need to ensure such software is up to date and that may also be down to the Host, so you need to talk to them too.
Change any ftp, control panel passwords, etc.
Thanks, I will stay away from that site until they get it fixed.
You’re welcome.
Fortunately with avast you at least have an early warning on sites that have been hacked.